Adware

Win32/Adware.Kraddare.H removal instruction

Malware Removal

The Win32/Adware.Kraddare.H is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Adware.Kraddare.H virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • Unconventionial language used in binary resources: Korean
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Win32/Adware.Kraddare.H?



File Info:

name: 2F5DA2F3509C07872A01.mlw
path: /opt/CAPEv2/storage/binaries/6cc48e5273cacb2d269a3389da4939cad20722409f55e8fabb30efe1fc152031
crc32: 013FDADB
md5: 2f5da2f3509c07872a01d37f7786bcc8
sha1: 352046b9bdf46449928a2ed6103ab7af611957c4
sha256: 6cc48e5273cacb2d269a3389da4939cad20722409f55e8fabb30efe1fc152031
sha512: 2d904108d03b45f4f59ab647c6e71950ced0760bb09f54b1f060b216553a292971caef2c1a642e567055d8d8e46dc2311b473ef0ae4916f4fe3d1717b9e46c60
ssdeep: 49152:K1grRjDeqGWVRW7YcUvfrRBHu7MVrGhBc60ckR8cK0wC5hi8QjIc144:dtjDHsqHuiGw60cA8cKPehi8Qjt1
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11CC5BE62A5B2EF22F6674C301B60DE3541411E364BDA4205B4EEFF8BB7B2A51343F586
sha3_384: 41484866f742bb5338d4c4e1a1baae952c6116b263c9bebc3eb26e0d9f3fe13a4f042f421a758de4558081e3bb2a1307
ep_bytes: 6a6068b8c64500e8a2c0ffffbf940000
timestamp: 2010-06-15 03:17:41


Version Info:

FileDescription: CodeDoctor MFC 응용 프로그램
FileVersion: 1, 0, 0, 1
InternalName: CodeDoctor
LegalCopyright: Copyright (C) 2009
OriginalFilename: CodeDoctor.EXE
ProductName: CodeDoctor 응용 프로그램
ProductVersion: 1, 0, 0, 1
Translation: 0x0412 0x04b0

Win32/Adware.Kraddare.H also known as:

FireEyeGeneric.mg.2f5da2f3509c0787
McAfeePUP-XET-AT
CylanceUnsafe
K7AntiVirusAdware ( 004c1cf81 )
AlibabaAdWare:Win32/Kraddare.c99e0ccc
K7GWAdware ( 004c1cf81 )
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Adware.Kraddare.H
APEXMalicious
ComodoMalware@#6tx5hd6srmrc
DrWebTrojan.FakeAV.19657
ZillyaTrojan.FakeAV.Win32.72048
McAfee-GW-EditionPUP-XET-AT
IkarusTrojan.SuspectCRC
MicrosoftTrojan:Win32/Wacatac.A!ml
AhnLab-V3PUP/Win32.CodeDoctor.R35674
VBA32suspected of Trojan.Downloader.gen
YandexTrojan.GenAsa!QpyL1WmxJdM
FortinetRiskware/Kraddare

How to remove Win32/Adware.Kraddare.H?

Win32/Adware.Kraddare.H removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment